This Privacy & Cookie Policy explains how Data4Cure, Inc. (“Data4Cure,” “we,” “us”) collects, uses, shares and protects personal information when you visit data4cure.com, contact us, subscribe to our newsletter, or otherwise interact with us. For personal information processed through this website and our communications, Data4Cure acts as the data controller.
1. Information we collect
Information you provide
- Demo / contact requests: first and last name, work email, organization, organization type, role, timeline, areas of interest, and any message you submit.
- Newsletter sign-ups: first name, organization, email address, and topics of interest, together with your marketing-consent choice.
- Scheduling & correspondence: details you provide when booking a meeting or emailing us.
Information collected automatically
- IP address, browser and device type, referring pages, and basic usage information, collected through standard server logs and essential cookies (see Cookies).
We do not ask for and request that you do not submit special-category data (e.g., health information) or confidential third-party data through our website forms.
Consumer health data & HIPAA
This site is intended for business and professional contacts and is not designed to collect “consumer health data” (as broadly defined by laws such as Washington’s My Health My Data Act). We do not collect health information or precise geolocation through the site, and we ask that you not submit health information via our forms. The marketing website is also not a HIPAA-regulated service; any protected health information processed in connection with our products is governed by separate agreements (including, where applicable, a Business Associate Agreement).
2. How we use your information
- Operate, maintain and secure the website;
- Respond to demo requests, inquiries and scheduling;
- Send our newsletter and product updates where you have opted in;
- Understand site usage and improve our content and offerings;
- Comply with legal obligations and enforce our terms.
3. Legal bases (GDPR/UK GDPR)
Where the EU/UK GDPR applies, we rely on: consent (e.g., newsletter marketing, non-essential cookies); performance of a contract or steps prior to a contract (responding to your requests); legitimate interests (operating, securing and improving the site, and responding to business inquiries); and legal obligation. You may withdraw consent at any time without affecting prior processing.
4. How we share information & our processors
We do not sell or “share” your personal information, and we do not use it for targeted advertising or profiling. We share it only with service providers (processors) who act on our instructions under written data-processing agreements, and where required by law. Our key website processors are:
| Provider | Purpose | Location | Safeguard |
|---|---|---|---|
| Intuit Mailchimp | Newsletter email delivery | USA | DPA · SCCs |
| Cloudflare | Website hosting, CDN, delivery & demo-form handling | USA / global | DPA · SCCs |
| Resend (resend.com) | Demo/contact form email delivery (notification to us) | USA | DPA · SCCs |
| Google Workspace (Google LLC) | Email correspondence and meetings / calendar | USA / EU | DPA · SCCs |
| Microsoft Teams (Microsoft Corp.) | Video meetings | USA / EU | DPA · SCCs |
| Attio | Managing and responding to your inquiry (CRM) | USA / EU | DPA · SCCs |
We may also disclose information to comply with law, legal process or lawful requests, and in connection with a merger, acquisition or sale of assets (with notice where required).
5. International data transfers
We are based in the United States, and our processors may store and process data in the U.S. and other countries. Where personal information of individuals in the EEA, UK or Switzerland is transferred outside those regions, we rely on the European Commission’s Standard Contractual Clauses (and the UK Addendum) together with appropriate supplementary measures.
6. Data retention
We retain personal information only as long as necessary for the purposes described above, to comply with legal obligations, resolve disputes and enforce agreements, after which it is deleted or anonymized. Newsletter data is retained until you unsubscribe; you can unsubscribe at any time via the link in any email.
7. Your rights
EEA / UK / Switzerland
You have the right to access, rectify, erase, restrict or object to processing, to data portability, to withdraw consent, and to lodge a complaint with your supervisory authority. To exercise these rights, contact privacy@data4cure.com.
United States (California & other states)
Depending on your state of residence — including California, Colorado, Connecticut, Virginia, Texas, Washington and other states with comprehensive privacy laws — you may have the right to know about and access the personal information we hold, to correct or delete it, to obtain a portable copy, and to opt out of the “sale” or “sharing” of personal information, targeted advertising, and certain profiling — and to be free from discrimination for exercising these rights.
We do not sell or share personal information, serve targeted advertising, or profile you, so there is nothing to opt out of in those categories. Where required, we honor recognized opt-out preference signals such as Global Privacy Control (GPC). To exercise any right, contact privacy@data4cure.com; you may use an authorized agent, and you may appeal a decision by replying to our response.
8. Cookies & similar technologies
We use only strictly necessary cookies and server logs required to operate and secure the site and remember basic preferences. We do not currently use advertising or cross-site tracking cookies. If we introduce analytics or other non-essential cookies in the future, we will update this policy and, where required, request your consent first.
Embedded third-party services you choose to interact with (e.g., our Mailchimp newsletter form) may set their own cookies governed by their respective privacy policies. You can control cookies through your browser settings; blocking essential cookies may affect site functionality.
9. Children’s privacy
The website is intended for business and professional use and is not directed to children. We do not knowingly collect personal information from children under 13 (or under 16 in the EEA/UK).
10. Security
We maintain reasonable administrative, technical and organizational measures designed to protect personal information. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.
11. Third-party links
The site may link to third-party websites and services. We are not responsible for their content or privacy practices; please review their policies.
12. Changes to this policy
We may update this policy from time to time. Material changes will be reflected by updating the “Last updated” date above and, where appropriate, by additional notice.
13. Contact us
Data4Cure, Inc.
201 Broadway, Ste 430, Cambridge, MA 02139, USA
privacy@data4cure.com · info@data4cure.com
Osano International Compliance Services Limited, ATTN: H6Z6, 25 North Wall Quay, Dublin 1, D01 H104, Ireland.
UK representative (Article 27 UK GDPR):
Osano UK Compliance Ltd, ATTN: H6Z6, 42–46 Fountain Street, Belfast, Antrim, BT1 5EF, United Kingdom.
See also our Terms of Use.